Vulnerability Details CVE-2023-31056
CloverDX before 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.9%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2023-31056
-
cpe:2.3:a:cloverdx:cloverdx:5.14.0
-
cpe:2.3:a:cloverdx:cloverdx:5.14.1
-
cpe:2.3:a:cloverdx:cloverdx:5.14.2
-
cpe:2.3:a:cloverdx:cloverdx:5.14.3
-
cpe:2.3:a:cloverdx:cloverdx:5.15.0
-
cpe:2.3:a:cloverdx:cloverdx:5.15.1
-
cpe:2.3:a:cloverdx:cloverdx:5.15.2
-
cpe:2.3:a:cloverdx:cloverdx:5.15.3
-
cpe:2.3:a:cloverdx:cloverdx:5.16.0
-
cpe:2.3:a:cloverdx:cloverdx:5.16.1
-
cpe:2.3:a:cloverdx:cloverdx:5.17.0
-
cpe:2.3:a:cloverdx:cloverdx:5.17.1
-
cpe:2.3:a:cloverdx:cloverdx:5.17.2